Other Authentication Options

Time-based One-Time Password Authentication

In addition to the above multifactor authentication options, LastPass also works with Time-based One-Time Password Authentication (TOTP) such as Authy and Microsoft Authenticator. Tıklayın işte to see the full list of options:

Before you get started to enable the multifactor authentication (MFA), be sure you’re running the latest updates for the LastPass browser extensions and mobile apps. You can always find the latest updates here: https://lastpass.com/downloadSonraki, follow the steps below to enable it in LastPass Account Settings:

Download the MFA app of your choice from the app store on your mobile device

Follow the instructions on the app’s welcome screen to set up the app on your device if needed. The example is Authy. If you use Microsoft Authenticator app, you can skip the steps 3 için 6 and go to LastPass Account Settings in step 7.

Authy will then send you a verification email to either your email or via SMS to your phone.

Tap the option to add a new account.

Create a password for Authy backup codes (be sure to store this password in LastPass!).

Login to your LastPass account on a desktop PC or laptop browser.

Open the LastPass Icon > Benim LastPass Vault > Account Settings on the left menu.

Tıklayın “Çok Faktörlü Kimlik Doğrulama Seçenekleri” sekmesi.

Scroll to the “Google Authenticator (Şifrematik)” seçenek.

Tıklayın “düzenlemek” for the Google Authenticator option.

Next to the Barcode field, tık “view”.

Enter your master password when being prompted

In the MFA app on your phone, tap the Scan QR Code button.

Hold your phone up to the computer to scan the Google Authenticator barcode.

Tıklayın “done” in the MFA app on your phone. Now your MFA token should appear and re-generate every 30 saniye.

On your desktop browser, click Enable.

Enter the MFA code on your mobile device to pair the MFA app with your LastPass account when being prompted

Click Update and enter your master password again to complete the process

The next time you login to LastPass you will be prompted to enter your authentication code. Just open the MFA app, and enter the code when prompted.

Lost Multifactor

Whenever you login with Multifactor Authentication enabled, you are prompted to use your authentication code to login. Underneath the entry field for your code , there is a link entitled:

“If you lost your device, click here to disable authentication.”

veya

“I’ve lost my device.”

Clicking this link will send an e-mail to your LastPass account e-mail address (or security e-mail address if you have set one), that will contain a link that will temporarily disable your Authenticator. If you are unable to access your e-mail for some reason, and have lost your Authenticator device, please do the following:

The email may have blocked by an email filter or sent was sent to Spam. To ensure that this does not occur, please add support@lastpass.com as a contact and to your email filter’s whitelist. Then prompt LastPass to send you another email.

If you have a security email set, the email you are looking for may be there. Note that your security email is different then the email you use to login to LastPass with.

*Note: This does not apply to LastPass Authenticator. If you need to disable LastPass Authenticator, please contact your Enterprise Admin or the LastPass support team.

Trust your Device

If you do not want to be prompted for Multifactor on devices that you trust, you can enable your device as “Trusted”. When logging onto a computer using multifactor authentication, LastPass will give you the option of marking the computer as a trusted computer by enabling Trust this computer:

Note: You see the trusting option when using LastPass plugin on desktop browsers, LastPass mobile app, and LastPass native app on Windows and OS X. You will not see this option when logging via lastpass.com.

You can disable a trusted computer at any time by going to the LastPass Vault > click on Account Settings on the left menu > Trusted Devices tab and de-selecting the check box under Enabled column next to the entry or delete the entry entirely by clicking the x sign. If you want to rename the trusted devices, click on the pencil edit icon and type the new name into the field. Then hit Enter to save the change.

Logging in Offline

When multifactor authentication is enabled, you can choose whether to allow LastPass to store an encrypted vault locally so you can log in without an internet connection or not. Çevrimdışı erişimi etkinleştirirseniz, you will be able to login without using Multifactor (with the exception of Yubikey) in case of a connectivity issue.

Using 'Permit Mobile Device Access' with Multifactor

Some multifactor authentication options have a ‘Permit Mobile Device Access’ option in the multifactor settings. This allows users to access their account via a mobile device without prompting for their multifactor while using a form of multifactor that is not supported on mobile devices (e.g. Yubikey). If ‘Permit Mobile Device Access’ is enabled, users will be required to setup a backup multifactor option that does not permit mobile device access. Bu nedenle, users who attempt to login to their account on a mobile device, will then be prompted for their 2nd (backup) multifactor option.

Lütfen aklınızda bulundurun, that in order to disable the 2nd (backup) multifactor authentication, the 1st one will need to be toggled back to “Disallow” in multifactor settings.